An analysis tool for Python that blurs the line between testing and type systems.

QSYM: A Practical Concolic Execution Engine Tailored for Hybrid Fuzzing

Blazing Fast Bytecode-Level Hybrid Fuzzer for Smart Contracts

History of symbolic execution (as well as SAT/SMT solving, fuzzing, and taint data tracking)

fuzzing + concolic = fuzzolic :)

OSS-Sydr-Fuzz - OSS-Fuzz fork for hybrid fuzzing (fuzzer+DSE) open source software.

The exploit generator CRAX++ is CRAX with a plugin system, s2e 2.0 upgrade, dynamic ROP, code selection, and I/O states (HITCON 2022)

Build your emulation environment as needed

CRETE under development

CPR: A new automated program repair technique based on concolic execution which works on patch abstraction with the sub-optimal goal of refining the patch to less over-fit the initial test cases.

模糊器与符号测试结合的漏洞挖掘系统（fuzzer, concolic-execution）

SymFusion: Hybrid Instrumentation for Concolic Execution

An approximate solver for concolic execution

A concolic testing engine for RISC-V embedded software with support for SystemC peripherals

A prototype of Concolic Testing engine for SystemVerilog, developed as part of PFN summer internship 2018.

Sydr benchmark applications

Formal model of program execution, symbolic execution, and taint tracking

A concolic interpreter backend for Fugue.

Code for ASE'21 Paper "CorbFuzz: Checking Browser Security Policies with Fuzzing"